Описание
LutelWall 0.97 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget.
Ссылки
- Broken Link
- Not Applicable
- Broken Link
- Broken Link
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Not Applicable
- Broken Link
- Broken Link
- Third Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken Link
Уязвимые конфигурации
Конфигурация 1Версия до 0.98 (исключая)
cpe:2.3:a:lutel:lutelwall:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-59
Связанные уязвимости
CVSS3: 5.5
github
почти 4 года назад
LutelWall 0.97 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file created by a system call to wget.
EPSS
Процентиль: 13%
0.00044
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-59